Betterment

Betterment operates as a robo‑advisor that provides automated investment management services to individual investors. The platform constructs and rebalances diversified portfolios based on user‑specified goals and risk tolerance, employing algorithms to allocate assets across exchange‑traded funds. It also offers features such as tax‑loss harvesting, automated dividend reinvestment, and retirement account options. Services are delivered primarily through a web‑based interface and mobile applications to customers located in the United States, aiming to simplify investing for users with varying levels of experience.

A distinguishing attribute of Betterment is its status as a fiduciary registered investment advisor regulated by the U.S. Securities and Exchange Commission, which obligates it to act in the best interest of its clients. The company differentiates itself by combining low‑cost, algorithm‑driven portfolio management with optional access to certified financial planners for premium tiers. Its technological approach relies on modern portfolio theory to optimize risk‑adjusted returns while emphasizing tax efficiency through strategies like tax‑loss harvesting. This blend of automation and advisory support positions Betterment as a technology‑forward participant in the retail wealth‑management sector.

On January 9, 2026, Betterment disclosed a cybersecurity incident in which threat actors used social engineering to compromise third‑party marketing and operational platforms, gaining unauthorized access to certain customer data fields including names, addresses, email addresses, phone numbers, and dates of birth. The attackers leveraged this access to send fraudulent cryptocurrency‑related scam messages that impersonated the company, although no account credentials, passwords, or financial information were reported as compromised. Betterment stated that the intrusion was promptly contained, unauthorized access was revoked, and an investigation was launched with the assistance of external cybersecurity experts. The firm also notified affected users, worked to secure the compromised third‑party platforms, and noted that the incident has been linked to the ShinyHunters group, which employed similar Okta SSO vishing tactics against other firms such as Crunchbase and SoundCloud.